CVE-2021-32495

Опубликовано: 07 июл. 2023

Источник: debian

EPSS Низкий

Описание

Radare2 has a use-after-free vulnerability in pyc parser's get_none_object function. Attacker can read freed memory afterwards. This will allow attackers to cause denial of service.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
radare2	fixed	5.5.0+dfsg-1		package

Примечания

https://github.com/radareorg/radare2/issues/18666
https://github.com/radareorg/radare2/commit/5e16e2d1c9fe245e4c17005d779fde91ec0b9c05 (5.3.0)

EPSS

Процентиль: 49%

0.0026

Низкий

Связанные уязвимости

CVE-2021-32495

CVSS3: 10

ubuntu

больше 2 лет назад

Radare2 has a use-after-free vulnerability in pyc parser's get_none_object function. Attacker can read freed memory afterwards. This will allow attackers to cause denial of service.

CVE-2021-32495

CVSS3: 10

nvd

больше 2 лет назад

Radare2 has a use-after-free vulnerability in pyc parser's get_none_object function. Attacker can read freed memory afterwards. This will allow attackers to cause denial of service.

GHSA-43pp-rgp9-c5h8

CVSS3: 10

github

больше 2 лет назад

Radare2 has a use-after-free vulnerability in pyc parser's get_none_object function. Attacker can read freed memory afterwards. This will allow attackers to cause denial of service.

EPSS

Процентиль: 49%

0.0026

Низкий